Customer data leak at the IT security provider Fortinet
There was a security incident at the IT security solutions provider Fortinet, where customer data was leaked. In a hacker forum, a user with the pseudonym "Fortibitch" offered 440 GB of data for sale, report security researchers from Cloudsek in a post. Negotiations with Fortinet are said to have failed, which means that the unknown attackers have now published the data.
Key Findings
- Fortinet confirms an attack but does not provide details on the affected data.
- 0.3 percent of customers are said to be affected.
- The leaked documents contain both customer data and internal information such as marketing materials and sales figures.
- Fortinet has no indications that the data has been misused.
- The services of Fortinet were not affected by the attack.
- It is reported that the copied data was stored in a third-party cloud storage.
Details of the Incident
The incident was discovered by security researchers who became aware of the sales advertisement in the hacker forum. The amount of data offered is considerable and could potentially contain sensitive information about customers and internal processes of Fortinet.
Fortinet has emphasised in a statement that they currently have no signs of data misuse. This could indicate that the attackers may have only published the data to demonstrate their capabilities or to exert pressure on the company.
Response from Fortinet
Fortinet has promptly taken measures to review and improve the security of their systems. The company has also emphasised that their services are not affected by the incident, which could provide some reassurance to their customers.
Conclusion
The incident at Fortinet once again raises questions about the security of customer data in the IT industry. Companies must be aware of the threats and take proactive measures to protect their data. The situation remains tense as Fortinet continues to work on clarifying the incident and informing the affected customers.